Summary
This host is installed with PHP and is prone denial of service vulnerability.
Impact
Successful exploitation could allow remote attackers to cause a denial of service condition.
Impact Level: Application
Solution
Upgrade to PHP Version 5.3.14 or 5.4.4 or later,
For updates refer to http://php.net/downloads.php
Insight
The flaw is due to an error in the PDO extension in pdo_sql_parser.re file, which fails to determine the end of the query string during parsing of prepared statements.
Affected
PHP version before 5.3.14 and 5.4.x before 5.4.4 on Windows
References
Severity
Classification
-
CVE CVE-2012-3450 -
CVSS Base Score: 2.6
AV:N/AC:H/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Kingsoft Antivirus 'KisKrnl.sys' Driver Denial of Service Vulnerability
- Oracle VM VirtualBox Unspecified Denial of Service Vulnerability (Windows)
- Perl Denial of Service Vulnerability Jan 2015 (Windows)
- ISC BIND 9 'RRSIG' Record Type Remote Denial of Service Vulnerability
- Samba 'client/mount.cifs.c' Remote Denial of Service Vulnerability